We invite you to join the Greycroft Talent Network

Leverage our network to build your career.
Tell us about your professional DNA to get discovered by any company in our network with opportunities relevant to your career goals.

Senior Security Engineer - Incident Response

Thirty Madison

Thirty Madison

United States · Remote
Posted on Saturday, April 20, 2024

Senior Engineer l, Security

We are looking for a dedicated Security Engineer to join our growing team. This Security Engineer will be working alongside an existing team of experienced security engineers and partnering closely with technologists across the company to help build digital health security and protect our patients here at Thirty Madison! We serve our patients from start to finish, and security works the same way, all the way from the deepest infrastructure to the patient experience, we want our patients to be safer by being with Thirty Madison. Above all, you embody the Thirty Madison mission of providing access to healthcare for all who suffer from chronic conditions.

Comp | Perks | Benefits

  • The base pay range for this position is $152,800 - $210,100 per year.**
  • Annual Incentive Plan + Stock Option Package
  • Robust and affordable Medical, Dental, and Vision plan options
  • 401(k) with a match, commuter benefits, and FSA
  • Annual $750 vacation stipend and $500 happiness stipend
  • Flexible time off policy

**Base pay offered may vary depending on job-related knowledge, skills, and experience. An annual incentive plan and stock options may be provided as part of the compensation package, in addition to a full range of medical, financial, and/or other benefits, dependent on the position offered.

What you get to do every day

  • Build and mature a threat hunting program.
  • Detect and respond to security incidents and participate in an incident on-call rotation
  • Develop innovative ways to detect security incidents.
  • Design and build the security for the future of our infrastructure.
  • Partner with the infrastructure team, engineering team, compliance team and within security teams to maintain and further improve our cloud security posture.
  • Create solutions and processes to identify, resolve and mitigate security vulnerabilities and risks.
  • Research threats and attack vectors that impact Thirty Madison’s applications and infrastructure.
  • Devise and bolster defense-in-depth through secure-by-default frameworks, architectures and processes.
  • Mentor and share security standards and processes with all parts of the organization.

What you bring to the role

  • Expertise responding to complex incidents across endpoint, network, and cloud.
  • Capable of understanding an unfamiliar system enough to successfully respond to an incident involving the system.
  • Expertise in detection engineering.
  • Experience with SIEM, EDR, and CSPM tools.
  • Deep understanding of the threat landscape.
  • Experience with assessing risks.
  • Experience in cloud security, especially for AWS, anything to do with IAM, secure configuration of services, AWS native security services like AWS Cloudtrail, SCP’s, AWS Org, Config etc.
  • Ability to understand the whole solution, not just the technology.
  • Focus on the end to end lifecycle of solving a problem and solutioning for it and not just implementing a security technology. Have a well-rounded view for problem solving.
  • Deep care for the patient and your fellow employees experience as you surpass security challenges.
  • Hunger to drive decision making, collaboration and to have deeper opinions on security design.
  • You can review different design choices and can understand/discuss pros and cons for each.
  • Ability to code to automate tedious tasks.
  • Experience with Infrastructure as Code. We use terraform!
  • Strong collaboration skills with the wider security team and engineering at Thirty Madison

All Company policies and procedures are subject to change without notice based on business needs. This includes, but is not limited to, the locations where we hire remote, hybrid, or onsite employees.

U.S. Applicants Only

Don’t meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single qualification. At Thirty Madison we are dedicated to building a diverse, inclusive and authentic workplace, so if you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.

We are proud to be an equal opportunity workplace committed to building a team culture that celebrates diversity and inclusion.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions. Contact us at recruiting@thirtymadison.com to request accommodation.

About Thirty Madison

Thirty Madison is a family of specialized healthcare brands devoted to creating exceptional outcomes for all. Each of its specialized brands is focused on a specific ongoing condition, and thoughtfully designed to support the unique needs of its community with personalized treatments and care; with Keeps for men's hair loss, Cove for migraine, Facet for skin conditions, and NURX for sexual health. With empathy at the heart of its innovation, its proprietary care model empowers hundreds of thousands of people with ongoing conditions with the accessible, effective treatments across a lifetime of care. In just four years, we’ve built a number of brands and are continuing to grow rapidly, recently raised a $140m Series C, and are backed by some of the best healthcare and consumer investors, including HealthQuest Capital, Mousse Partners, Bracket Capital, Polaris Partners, Johnson & Johnson, Maveron, Northzone, among others.

We are honored to become Great Place to Work certified and be included on BuiltIn's 2021 list of Best Places To Work in New York City, and Best Midsize Companies To Work For. We've also been recognized by Forbes' Best Startup Employers, being named as one of America's Best Places to Work 2022. This recognition is a true testament to our hardworking team and company culture. As we continue to grow, we pride ourselves on finding passionate individuals who truly embody our core values and mission each and every day. Learn more at ThirtyMadison.com.

*This employer participates in E-Verify and will provide the federal government with your I-9 Form information to confirm that you are authorized to work in the U.S.*

*Please be aware that there are fraudulent entities who are falsely claiming to be or represent Thirty Madison in order to solicit sensitive personal information or payment. Thirty Madison is not in any way associated with these entities or practices. The safety and integrity of those seeking employment with us is of the utmost importance and we actively work with our legal and security teams to prevent future incidents.

Thirty Madison will never ask for sensitive information or payment when engaging with job seekers. The entities use many methods to perpetuate these scams, including but not limited to: participating in a text-only interview, using Thirty Madison’s trademarks on their correspondence, or providing you with a seemingly legitimate offer letter. If you suspect you are a victim of this scamming, we encourage you to cease further contact and report the crime to The Federal Trade Commission.